]> granicus.if.org Git - apache/commit
projects / apache / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5b6b58b) | patch
SECURITY (CVE-2014-0226): Fix a race condition in scoreboard handling,
authorJoe Orton <jorton@apache.org>
Mon, 14 Jul 2014 19:26:00 +0000 (19:26 +0000)
committerJoe Orton <jorton@apache.org>
Mon, 14 Jul 2014 19:26:00 +0000 (19:26 +0000)
commitb2605d20c42fe882a42f55d059286f64927ac30d
tree65c09cc1dc1875766ff9c4257749972813417ee5tree | snapshot
parent5b6b58bbf228de54e6222d6bd5eef46f0a16f2f9commit | diff
SECURITY (CVE-2014-0226): Fix a race condition in scoreboard handling,
which could lead to a heap buffer overflow.  Thanks to Marek Kroemeke
working with HP's Zero Day Initiative for reporting this.

* include/scoreboard.h: Add ap_copy_scoreboard_worker.

* server/scoreboard.c (ap_copy_scoreboard_worker): New function.

* modules/generators/mod_status.c (status_handler): Use it.

* modules/lua/lua_request.c (lua_ap_scoreboard_worker): Likewise.

Reviewed by: trawick, jorton, covener, jim
Submitted by: jorton, covener

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1610491 13f79535-47bb-0310-9956-ffa450edef68
include/ap_mmn.h diff | blob | history
include/scoreboard.h diff | blob | history
modules/generators/mod_status.c diff | blob | history
modules/lua/lua_request.c diff | blob | history
server/scoreboard.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.